Oracle® Cloud

What's New for Oracle CASB Cloud Service

Release 19.2.2.0

E87961-41

April 2019

What’s New for Oracle CASB Cloud Service

When new and changed features become available, Oracle CASB Cloud Service instances are upgraded in the data centers where Oracle Cloud services are hosted. Here’s an overview of new features and enhancements added in the past 12 months to improve your Oracle CASB Cloud Service experience.

You don’t need to request an upgrade to be able to use the new features—they come to you automatically.

Information on known and fixed issues is located in a separate document, Known Issues for Oracle CASB Cloud Service.

Week of April 21, 2019

Component Description of New Features

Oracle CASB Cloud Service

Week of April 7, 2019

Component Description of New Features

Oracle CASB Cloud Service

  • Blacklist & whitelist entries now allow IPv6/CIDR formats. See Putting IP Addresses on Blacklists or Whitelists.

  • See the administrator role assigned to your login. Your administrator role determines the features that you can access and the functions that you can perform in Oracle CASB Cloud Service. The role assigned to your login is now displayed on the user icon menu. See Viewing Your Role.

  • Select business objects to be monitored for Fusion Apps in the Oracle CASB Cloud Service console. Now you only have to enable business object monitoring in the Fusion Applications console, and all business objects available to be monitored for a particular supported Fusion Application instance are automatically selected. You can deselect any combination of business objects that you don't want to monitor. See Updating Monitoring Properties for an Oracle ERP Cloud Instance, Updating Monitoring Properties for an Oracle HCM Cloud Instance, and Updating Monitoring Properties for an Oracle Sales Cloud Instance.

  • Several enhancements have been added for Oracle Cloud Infrastructure (OCI) monitoring:

    • Trigger an alert for detaching a VNIC, in addition to other actions on VNICs (virtual network interface cards). See Creating Alerts for Compute Instances.

    • New security controls have been added for OCI instances:

      • Database not at vendor recommended version
      • Database not being automatically backed up
      • Database system with patches not applied
      • Database system with public IP address
      • Multifactor authentication not enabled
      • OCI compartment not registered in Oracle CASB

      See Updating the Security Control Baseline for an OCI Instance.

  • Help links for individual SAP SuccessFactors security controls have been added, to provide direct access to the documentation available for each security control. See Updating the Security Control Baseline for a SuccessFactors Instance.

Week of March 10, 2019

Component Description of New Features

Oracle CASB Cloud Service

  • First new tenant admin can be created automatically. The person who receives the welcome letter is automatically set up as the root tenant administrator for the new Oracle CASB Cloud Service tenant. The first person who logs in to the console after that recipient can automatically be set up as a tenant administrator, without the need to create the user in both the Oracle Cloud MyServices dashboard and the Oracle CASB Cloud Service console. See Setting Up a Primary Tenant Administrator.

  • Several enhancements for Oracle Cloud Infrastructure (OCI) monitoring:
  • New business object monitored for Oracle HCM Cloud: The Personal Payment Method business object has been added to the list of business objects that Oracle CASB Cloud Service monitors when you register Oracle HCM for monitoring. See Adding an Oracle HCM Cloud Instance.

  • Allow Oracle CASB Cloud Service to automatically whitelist trusted network addresses, if you wish to. See Setting Your Preferences, or you can set this preference on the page that displays whitelisted and blacklisted IP addresses.

  • AWS security controls for encryption status allow exceptions for specified tags. The "Check EBS volume encryption status" and "Check RDS encryption status" security controls now allow you to specify tags for instances for which you do not wish to generate risk events. See Security Control Values for AWS (Push Security Controls).

  • New report for SAP SuccessFactors: A new "Sensitive Permissions assigned to User Groups" report is now available for SuccessFactors. See Viewing Reports for ServiceNow.

  • New ASN and ISP information in user details: ASN (autonomous system number) and ISP information that was previously added to risk events is now shown in the detailed information for users. See User Activity Reports.

Week of February 10, 2019

Component Description of New Features

Oracle CASB Cloud Service

  • Integration with Oracle Cloud Infrastructure (OCI) has been enhanced:

    • Security control templates are now supported, to make managing of security control settings across multiple OCI instances easy. See Working with OCI Security Control Baseline Settings and Templates.

      To enable this feature, contact Oracle Support (http://support.oracle.com). If you have not registered yet, you will need your Customer Support Identifier (CSI) in order to register to submit service request tickets. As an alternative, you can also contact your Oracle CASB Cloud Service Customer Success Manager.

    • Access the My Services dashboard directly, from Oracle CASB Cloud Service navigation menu, when you are subscribed to Oracle CASB Cloud Service through universal credit model (UCM). See Accessing Oracle CASB Cloud Service Using Universal Credits.

    • Enhancements to OCI security controls: "IAM Password older than 90 days" has been added; and "Public bucket is found" and "Tenancy Administrator privilege granted to additional IAM group" now allow you to define exceptions. See Updating the Security Control Baseline for an OCI Instance.

    • Public/private key pair maintenance released week of January 13 is now generally available on all Oracle CASB Cloud Service tenants. See Preparing a Public/Private Key Pair.

    • Enhanced compartment support for an OCI instance, released week of January 13 is now generally available on all Oracle CASB Cloud Service tenants. See Adding an OCI Instance.

  • Single sign-on (SSO) through Oracle Identity Cloud Service (IDCS) is now supported in all Oracle Fusion Applications that you register in Oracle CASB Cloud Service. See Adding an Oracle ERP Cloud Instance, Adding an Oracle HCM Cloud Instance, and Adding an Oracle Sales Cloud Instance.

  • Trigger policy alerts based on additional actions on SharePoint and OneDrive files in Office 365 files. You can now get alerts for anonymous and company linking actions performed on SharePoint and OneDrive files. See Creating Alerts for SharePoint and OneDrive Files and Folders.

  • New troubleshooting topics for SAP SuccessFactors have been added. See Troubleshooting for SuccessFactors.

  • Risk Events now shows ASN (autonomous system number) information for IP addresses. When you move the mouse pointer over an IP address on the Risk Events page, the pop-up now includes the ASN name (ASN Name) and number (ASN Number) in addition to geographic location information (City, State, and Postal code).

    See Viewing Risk Events from the Risk Events Page. This topic describes how you can view risk events where you can see these enhancements; the topic doesn't mention them directly.

Oracle CASB Cloud Service — Discovery

  • Warning is provided when expected user count is exceeded. Any time that the actual number of users in Oracle CASB Cloud Service — Discovery exceeds the expected user count in your subscription, you now see a warning message, with a link to update your subscription. See Subscribing to Oracle CASB Cloud Service — Discovery.

  • General availability - new key security indicators released week of January 13 are now generally available on all Oracle CASB Cloud Service tenants which are subscribed to Oracle CASB Cloud Service — Discovery. See Working with the Key Security Indicators Tab.

Week of January 13, 2019

Component Description of New Features

Oracle CASB Cloud Service

  • Integration with Oracle Cloud Infrastructure (OCI) has been enhanced:

    • You can maintain your public/private key pairs in Oracle CASB Cloud Service. Instead of creating and maintaining the public/private key pairs necessary to connect Oracle CASB Cloud Service with OCI on your laptop, you can now do this right in the Oracle CASB Cloud Service console, using the CASB Key-Pair Management option in the Configuration submenu. See Preparing a Public/Private Key Pair.

      To enable this feature, contact Oracle Support (http://support.oracle.com). If you have not registered yet, you will need your Customer Support Identifier (CSI) in order to register to submit service request tickets. As an alternative, you can also contact your Oracle CASB Cloud Service Customer Success Manager.

    • Steps have been streamlined to specify a particular compartment for an OCI instance, when you register it for Oracle CASB Cloud Service to monitor. See Adding an OCI Instance.

      To enable this feature, contact Oracle Support (http://support.oracle.com). If you have not registered yet, you will need your Customer Support Identifier (CSI) in order to register to submit service request tickets. As an alternative, you can also contact your Oracle CASB Cloud Service Customer Success Manager.

  • SAP SuccessFactors has two new enhancements:

  • Microsoft Office 365 policy alerts now can trigger on sharing level. In the policy creation wizard, when you select Data Protection on the Name page and SharePoint/OneDrive File as the Resource, you can now specify Sharing Level as a condition to trigger or skip the alert. See Condition Parameters for Office 365.

  • Enabling business object auditing is now largely automated for Oracle ERP Cloud and Oracle HCM Cloud. All you have to do within those Fusion Applications is set Auditing Level to Auditing; you no longer need to select individual business objects to be monitored. See Enabling Business Object Auditing for Oracle ERP Cloud and Enabling Business Object Auditing for Oracle HCM Cloud.

Oracle CASB Cloud Service — Discovery

Several enhancements have been implemented to improve access to information collected on discovered applications:

  • Navigation menu Discovery option now accesses Oracle CASB Cloud Service — Discovery. The information that was previously displayed in the App Discovery tab on the Dashboard now appears on the Discovery page, accessed from the Navigation menu. See Viewing Discovered Applications and Understanding the Results.

  • Three new key security indicators have been added to the original two ("Users with most apps" and "Top 10 most used apps") and the Discovery key security indicators are now displayed on a separate, Key Security Indicators tab on the new Discovery page.

    Note:

    This is not related to the Key Security Indicators tab that used to be on the Dashboard. Previously, if enabled, the two Discovery key security indicators were located at the top of the App Discovery tab on the Dashboard.

    See Viewing Discovered Applications and Understanding the Results.

    Note:

    You must enable key security indicators, in addition to subscribing to Oracle CASB Cloud Service — Discovery. To enable this feature, contact Oracle Support (http://support.oracle.com). If you have not registered yet, you will need your Customer Support Identifier (CSI) in order to register to submit service request tickets. As an alternative, you can also contact your Oracle CASB Cloud Service Customer Success Manager.

    If key security features are not enabled, the Discovery page has no tabs and displays only the detailed information for the discovered applications.

  • All key security indicators drill down to details in the discovered applications data. When you click an item within one of the key security indicators, the list of discovered applications summarized in the key security indicator is displayed on the App Discovery tab. See Working with the Key Security Indicators Tab.

Week of December 16, 2018

Component Description of New Features

Oracle CASB Cloud Service

  • Monitor SAP SuccessFactors in Oracle CASB Cloud Service. You can now register a SuccessFactors instance to be monitored by Oracle CASB Cloud Service. See Setting Up SAP SuccessFactors.

  • Collect logs from an external account for an AWS instance that you register. You can now specify that logs should be collected from an external account when you register or update credentials for an AWS instance. SeeUpdating the Credentials for an AWS Instance, or the specific topic for the type of AWS instance you are adding under Preparing and Registering AWS.

Oracle CASB Cloud Service — Discovery

Tagging has been enhanced in Oracle CASB Cloud Service — Discovery:

Week of December 2, 2018

Component Description of New Features

Oracle CASB Cloud Service

Week of November 18, 2018

Component Description of New Features

Oracle CASB Cloud Service

Week of November 4, 2018

Component Description of New Features

Oracle CASB Cloud Service

  • The Policy creation and modification wizard navigation has been redesigned to conform with the Oracle standard for Cloud Service user interfaces. As you move through the wizard pages, a highlight moves thru the numbered task icons at the top, which change to check marks as each task is completed. See Creating a Policy.

  • The OCI Security Control Baseline wizard page has been enhanced with a number of refinements to individual controls. See Updating the Security Control Baseline for an OCI Instance.

  • Field-level help links have been implemented on the OCI Security Control Baseline wizard page. Try out the links from that page in the Oracle CASB Cloud Service console. For navigation instructions to the page, see Updating the Security Control Baseline for an OCI Instance.

  • Applications page retains the grid view vs. card view setting when you return to the page, either later in the same session or in a separate, entirely new session. See Applications.

  • Oracle Identity Cloud Service (IDCS) policy alerts now can use identity groups in a Condition that restricts the scope for triggering the alert. See Creating an IDCS Policy.

  • Migration from nonmetered to metered service for Oracle CASB Cloud Service can now be achieved by a series of manual tasks. See Migrating from Non-Metered to Metered Tenant.

  • ServiceNow, Kingston version is now supported by Oracle CASB Cloud Service. See Preparing ServiceNow.

Week of October 7, 2018

Component Description of New Features

Oracle CASB Cloud Service

Enhancements to Oracle Identity Cloud Service (IDCS) support:

  • Custom policies supported for IDCS. You can now create custom policies to generate alerts for actions on identity objects. See Creating Policy Alerts for Oracle Identity Cloud Service (IDCS).

  • IDCS “Password complexity” security control expanded. The single “Password complexity” security control has been replaced with set of 13 specific controls related to password complexity. See Updating the Security Control Baseline for an IDCS Instance.

  • SSO application used to log in to monitored application instance added to user login reports. If you have IDCS enabled on your Oracle CASB Cloud Service tenant, the Users with Failed Logins and User Logins reports now have two additional columns, to display:

    • The application instance registered in Oracle CASB Cloud Service that the user accessed.

    • The name of the single sign-on application that was used to access the registered application instance.

    See Users with the Most Failed Logins Card and Users with the Most Logins Card.

Week of September 23, 2018

Component Description of New Features

Oracle CASB Cloud Service

  • Oracle Identity Cloud Service (IDCS) is now supported integrally as a single sign-on identity provider. User logins through IDCS, to other applications that Oracle CASB Cloud Service monitors, can now be counted correctly as logins, or failed logins, to the monitored applications. See Setting Up Oracle Identity Cloud Service (IDCS).

    To enable this feature, contact Oracle Support (http://support.oracle.com). If you have not registered yet, you will need your Customer Support Identifier (CSI) in order to register to submit service request tickets. As an alternative, you can also contact your Oracle CASB Cloud Service Customer Success Manager.

  • Smart Policies (Managed Policies) are now generally available. First implemented with limited availability in May, Managed policies are maintained as part of the Oracle CASB Cloud Service infrastructure; you can’t modify them directly, but you can make a modifiable copy as a custom policy.

    In addition to the predefined policies that are available by default when you register an application instance, Managed Policies provide:

    • Higher value alerts — configured for real vulnerabilities.

    • Actionable outcomes — guidance on actions to take.

    • Reduced "noise" — fewer alerts that are "false positives."

    • "Expertise out-of-the-box" — you don't have to be a security expert in order to set up useful alerts.

    See Working with Managed Policy Alerts.

  • Individual preferences are consolidated into a single page, accessed through a single option in the menu that drops down from your initials when you are logged in to the Oracle CASB Cloud Service console. Individual preferences are accessed by clicking different labels in a header row. See Setting Your Preferences.

  • A Rerun Scan button has been implemented for the Data Protection retroactive scan, so that you can simply click the button to repeat a scan that you ran earlier. See Performing a Retroactive Scan.

  • Risk event details now include First Found and Last Found dates, information that can be valuable in analyzing potential threats.

Week of September 9, 2018

Component Description of New Features

Oracle CASB Cloud Service

  • Two new security controls have been added for Oracle Cloud Infrastructure (OCI)...

  • Compartment monitoring options are now supported with OCI. See Adding an OCI Instance.

  • Data Protection now supports a set of General Data Protection Regulation (GDPR) data matches to use in defining rules.

  • A list of resources monitored by application type is now available. See Objects Monitored by Application Type.

  • Raw JSON code is now formatted for better readability when it’s displayed in the log data details.

Week of August 12, 2018

Component Description of New Features

Oracle CASB Cloud Service

  • Keep your filter settings. Filter settings on key Oracle CASB Cloud Service pages are now automatically retained, both within a session and between sessions. See Applications, Risk Events, Threats, and Incidents.

  • Enhanced support for Oracle Cloud Interface (OCI) security controls and policy alerts:

  • Create policy alerts for many Oracle ERP Cloud business objects. for some of the most important business objects in Oracle ERP Cloud. See Creating Alerts for ERP Cloud Business Objects.

  • Control names for risk events generated by policy alerts, you now have the option of displaying the policy alert name instead of the internally generated risk event name in the SUMMARY column on the Risk Events page. This gives you complete control over the text displayed in the SUMMARY column for policy alerts. See Setting Your Risk Event Preferences.

Week of July 29, 2018

Component Description of New Features

Oracle CASB Cloud Service

  • New security control for OCI: An option to be alerted to use of public buckets is now available in the security control baseline for Oracle Cloud Interface (OCI) instances. See Updating the Security Control Baseline for an OCI Instance.

  • Simplified management of blacklists and whitelists: When you add IP addresses to your whitelist, threats are no longer generated for any IP address that is not on your whitelist. Now whitelisted IP addresses are always trusted and blacklisted IP addresses always generate a threat. See Putting IP Addresses on Blacklists or Whitelists.

Oracle CASB Cloud Service — Discovery

  • Streamlined functionality for setting up log file uploads: The Discovering Shadow Applications chapter has been updated to reflect the streamlined functionality for setting up the import of log files from your firewall. Oracle CASB Cloud Service — Discovery now can import firewall log files without any reformatting. Previously it was necessary to set up the export of log files from you firewall software in a special format. See Discovering Shadow Applications.

  • Subscription and metering: Oracle CASB Cloud Service — Discovery is now available by subscription, with metered billing. New Oracle CASB Cloud Service tenants show the App Discovery tab by default, with a banner that explains the subscription process and provides an Enable button that allows any tenant administrator with privileges to enable the subscription. See Subscribing to App Discovery.

Week of July 1, 2018

Component Description of New Features

Oracle CASB Cloud Service — Discovery

When viewing the shadow applications and plug-ins that were discovered in a particular month, an option to delete them all is now available. See Viewing Discovered Applications and Understanding the Results.

To enable this feature, contact Oracle Support (http://support.oracle.com). If you have not registered yet, you will need your Customer Support Identifier (CSI) in order to register to submit service request tickets. As an alternative, you can also contact your Oracle CASB Cloud Service Customer Success Manager.

Week of June 17, 2018

Component Description of New Features

Oracle CASB Cloud Service

  • Enhanced support for Oracle Cloud Infrastructure (OCI):

    • Update the security control baseline for OCI: You can now specify custom settings for the security controls for OCI. See Updating the Security Control Baseline for an OCI Instance.

    • Set an OCI policy alert on tags: You can now specify presence or absence of tags as a condition that triggers an alert for Oracle Cloud Infrastructure (OCI). See Creating an OCI Policy.

    • Set an OCI policy alert on compartment name: You can now specify a compartment name as a condition that triggers an alert for OCI. See Updating the Security Control Baseline for an OCI Instance.

    • Export OCI risk events for security controls and policy alerts in a single CSV file: When you export risk events for OCI, you can now download a CSV file that combines risk events from both security controls and policy alerts, in addition to the separate CSV files for security controls, policy alerts, and threats. See Exporting Risk Events to a CSV File.

  • Set a Box policy alert on sharing level: You can now specify a sharing level as a condition that triggers an alert for box. See Condition Parameters for Box Alerts.

  • Cancel a retroactive scan: You now have the ability to cancel a retroactive scan after you have started it in Configuration, DLP Management. See Performing a Retroactive Scan.

Week of June 3, 2018

Component Description of New Features

Oracle CASB Cloud Service

Week of May 20, 2018

Component Description of New Features

Oracle CASB Cloud Service

  • In addition to the predefined policies that are available by default when you register an application instance, a new generation of Smart Policies are now available by request. Smart Policies provide:

    • Higher value alerts — configured for real vulnerabilities.

    • Actionable outcomes — guidance on actions to take.

    • Reduced "noise" — fewer alerts that are "false positives."

    • "Expertise out-of-the-box" — you don't have to be a security expert in order to set up useful alerts.

    See About Policy Alerts.

  • In addition to filtering risk events by Status and App Instances, the Risk Events page now allows you more precisely focus on exactly those risk events that you want to see, by filtering on Risk Level, Category, and a Date Range. See Viewing Risk Events from the Risk Events Page.

  • When defining policy alerts for Box, with Data Protection enabled, an enhanced list of options is available in the Action list for File and Folder resources. See subtopics involving file and folder alerts under Creating Policy Alerts for Box.

  • You can now use multi-site, multi-drive live scanning with Office 365. You can select any combination of the folders that are available on the different sites listed. See Updating Data Protection for an Office 365 Instance.

Week of April 22, 2018

Component Description of New Features

Oracle CASB Cloud Service

  • With new instances of Office 365, you can now selectively enable categories of security events to be monitored.

    See Updating Configuration Monitoring for Office 365.

  • You can now register an Office 365 instance for monitoring using a dedicated user who has minimal permissions, instead of full global administrator permissions. See Creating the Dedicated Oracle CASB Cloud Service User.

  • In monitoring Box and Office 365 instances via Data Loss Prevention (DLP) scans, Oracle CASB Cloud Service now supports:

  • Download of data that has been archived from your Oracle CASB Cloud Service tenant can now be requested. Data that appears in the console is archived, and disappears from the console, after 90 days. Data is retained in the archive for two full years. See Obtaining Archived Data.

  • When you export risk events to Splunk, the type CIM alert field in Splunk is now populated, by data from the Oracle CASB Cloud Service Policy Name field.

    See Splunk Fields Mapped to Oracle CASB Cloud Service Fields.

  • When you are considering using universal credit monitoring (UCM) to subscribe to a cloud service that will be monitored by Oracle CASB Cloud Service, a consolidated list of supported applications is now available. See Applications Available through UCM.

  • Support for Oracle ERP Cloud, Oracle HCM Cloud, and Oracle Sales Cloud is now generally available, without the need to make a special request.

Week of April 1, 2018

Component Description of New Features

Oracle CASB Cloud Service

  • Monitoring of Microsoft Azure is now supported:

    See Setting Up Azure.

  • The Data Protection feature has been enhanced to provide:

  • In Risk Events, all events triggered by the same policy alert can now be dismissed at the same time.

    When you select Dismiss from the Action drop-down for a risk even, if the event was triggered by a policy alert and there are more events triggered by that same alert, you can select the option to Dismiss all <count> open risk events created by the policy <name>.

  • To create a new policy alert with many of the same settings as an existing alert, you can now duplicate the existing alert and, in the copy, make just the changes needed for the new alert.

    See Duplicating a Policy.

  • In defining a policy alert, you can now set a condition for the CASB threat intelligence IP reputation. You can filter alerts to trigger only when the event originates from an IP address that has a threat intelligence reputation of either Suspicious or Regular.

    See Creating a Policy.

Documentation Accessibility

For information about Oracle's commitment to accessibility, visit the Oracle Accessibility Program website at http://www.oracle.com/pls/topic/lookup?ctx=acc&id=docacc.

Access to Oracle Support

Oracle customers that have purchased support have access to electronic support through My Oracle Support. For information, visit http://www.oracle.com/pls/topic/lookup?ctx=acc&id=info or visit http://www.oracle.com/pls/topic/lookup?ctx=acc&id=trs if you are hearing impaired.


Oracle Cloud What's New for Oracle CASB Cloud Service, Release 19.2.2.0

E87961-41

Copyright © 2016, 2019, Oracle and/or its affiliates. All rights reserved.

This software and related documentation are provided under a license agreement containing restrictions on use and disclosure and are protected by intellectual property laws. Except as expressly permitted in your license agreement or allowed by law, you may not use, copy, reproduce, translate, broadcast, modify, license, transmit, distribute, exhibit, perform, publish, or display any part, in any form, or by any means. Reverse engineering, disassembly, or decompilation of this software, unless required by law for interoperability, is prohibited.

The information contained herein is subject to change without notice and is not warranted to be error-free. If you find any errors, please report them to us in writing.

If this is software or related documentation that is delivered to the U.S. Government or anyone licensing it on behalf of the U.S. Government, then the following notice is applicable:

U.S. GOVERNMENT END USERS: Oracle programs, including any operating system, integrated software, any programs installed on the hardware, and/or documentation, delivered to U.S. Government end users are "commercial computer software" pursuant to the applicable Federal Acquisition Regulation and agency-specific supplemental regulations. As such, use, duplication, disclosure, modification, and adaptation of the programs, including any operating system, integrated software, any programs installed on the hardware, and/or documentation, shall be subject to license terms and license restrictions applicable to the programs. No other rights are granted to the U.S. Government.

This software or hardware is developed for general use in a variety of information management applications. It is not developed or intended for use in any inherently dangerous applications, including applications that may create a risk of personal injury. If you use this software or hardware in dangerous applications, then you shall be responsible to take all appropriate fail-safe, backup, redundancy, and other measures to ensure its safe use. Oracle Corporation and its affiliates disclaim any liability for any damages caused by use of this software or hardware in dangerous applications.

Oracle and Java are registered trademarks of Oracle and/or its affiliates. Other names may be trademarks of their respective owners.

Intel and Intel Xeon are trademarks or registered trademarks of Intel Corporation. All SPARC trademarks are used under license and are trademarks or registered trademarks of SPARC International, Inc. AMD, Opteron, the AMD logo, and the AMD Opteron logo are trademarks or registered trademarks of Advanced Micro Devices. UNIX is a registered trademark of The Open Group.

This software or hardware and documentation may provide access to or information about content, products, and services from third parties. Oracle Corporation and its affiliates are not responsible for and expressly disclaim all warranties of any kind with respect to third-party content, products, and services unless otherwise set forth in an applicable agreement between you and Oracle. Oracle Corporation and its affiliates will not be responsible for any loss, costs, or damages incurred due to your access to or use of third-party content, products, or services, except as set forth in an applicable agreement between you and Oracle.